Nmap Development mailing list archives

[PATCH] Sophos AV service recognition

From: Brandon Enright <bmenrigh () ucsd edu>
Date: Fri, 7 Mar 2008 02:21:30 +0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Attached is a patch against SVN to add service detection for Sophos
AV's enterprise client management services.  Sophos uses a single
executable (Sophos Message Router) to route requests to the appropriate
service.  This is much like how RPC is designed.

One of the the message router's ports is SSL wrapped and the
certificate is generated for the specific computer it is on.  In the
cases where it is possible to retrieve computer name I'm setting h//
appropriately.

Brandon

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.7 (GNU/Linux)

iD8DBQFH0Ka4qaGPzAsl94IRArR5AJ9T/Ref5sysBVTapVLVJfZZ4JYhLwCgnFAm
VKgajNu0g0cDwZV2sNpl+N4=
=4+rp
-----END PGP SIGNATURE-----

Attachment: sophos.diff
Description:


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

Current thread:

[PATCH] Sophos AV service recognition Brandon Enright (Mar 06)
- Re: [PATCH] Sophos AV service recognition doug (Mar 07)